IT 4510 : Ethical Hacking

Squid and Dansguardian

Dr Joe Francom

SQUID

• Rather large config file
• Blacklist or Whitelist all
• Insert your rules where it says “INSERT”
• Access list rules are checked in the order they are written. List searching terminates as soon as one of the rules is a match.

SQUID

• http_access allow localnet (set your localnet to lock things down so that only your hosts would be able to access, also allow from localhost)
• Ordering of rules matter

SQUID acl synopsis

• url_regex can match url (just looks at url, not path)
• time
  • acl badtime time MTF 12:00-14:00
• dstdomain
• urlpath_regex can match part of path

Dansguardian